Security advisories

Show advisories for only Drupal Core, only contributed projects, or only PSAs

SA-CONTRIB-2009-106 - Agreement - Cross Site Scripting

By Drupal Security Team on 18 Nov 2009 at 20:41 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-106
Project: Agreement (third-party module)
Version: 6.x
Date: 2009-November-18
Security risk: Moderately Critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2009-105 - Subgroups for Organic Groups - Cross Site Scripting

By Drupal Security Team on 18 Nov 2009 at 20:35 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-105
Project: Subgroups for Organic Groups (third-party module)
Version: 5.x
Date: 2009-November-18
Security risk: Less Critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2009-104 - Feed Element Mapper - Cross Site Scripting

By Drupal Security Team on 18 Nov 2009 at 19:51 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-104
Project: Feed Element Mapper (third-party module)
Version: 5.x, 6.x
Date: 2009-November-18
Security risk: Moderately Critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2009-103 - Strongarm - Cross Site Scripting

By Drupal Security Team on 18 Nov 2009 at 18:54 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-103
Project: Strongarm (third-party module)
Version: 6.x
Date: 2009 November 18
Security risk: Moderately Critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2009-102 - PHPList Integration Module - Cross Site Request Forgery

By pwolanin on 18 Nov 2009 at 17:59 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-102
Project: PHPList Inegration Module (third-party module)
Version: 5.x, 6.x
Date: 2009-November-18
Security risk: Less Critical
Exploitable from: Remote
Vulnerability: Cross site request forgery

SA-CONTRIB-2009-101 - Web Services - Access Bypass

By Drupal Security Team on 11 Nov 2009 at 22:52 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-101
Project: Web Services (third-party theme)
Version: 6.x
Date: 2009-November-11
Security risk: Critical
Exploitable from: Remote
Vulnerability: Access Bypass

SA-CONTRIB-2009-100 - AddToAny - Cross Site Scripting

By undefined on 11 Nov 2009 at 22:07 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-100
Project: AddToAny (third-party module)
Version: 5.x, 6.x
Date: 2009 November 11
Security risk: Moderately Critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2009-099 - RootCandy Theme - Cross Site Scripting

By meba on 11 Nov 2009 at 21:28 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-099
Project: RootCandy (third-party theme)
Version: 6.x
Date: 2009-November-11
Security risk: Moderately Critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2009-098 - Zoomify - Cross Site Scripting

By Drupal Security Team on 4 Nov 2009 at 22:09 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-098
Project: Zoomify (third-party module)
Version: 5.x, 6.x
Date: 2009-November-4
Security risk: Moderately Critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2009-097 - Organic Groups Vocabulary - Cross Site Scripting

By Drupal Security Team on 4 Nov 2009 at 22:04 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2009-097
Project: Organic Groups Vocabulary (third-party module)
Version: 6.x
Date: 2009-November-4
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

Pages

Subscribe with RSS